$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/309/n_kfElzM6urZGwcy6RmHC2Gdhrk.roa File: n_kfElzM6urZGwcy6RmHC2Gdhrk.roa (raw, json) Hash identifier: Y+lR6YIxfbXpF2Iu8WVQape8Nrz3B3C6F0ecIN0H+t8= Subject key identifier: 9F:F9:1F:12:5C:CC:EA:EA:D9:1B:07:32:E9:19:87:0B:61:9D:86:B9 Certificate issuer: /CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Certificate serial: 077C Authority key identifier: 69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/n_kfElzM6urZGwcy6RmHC2Gdhrk.roa Signing time: Tue 30 Apr 2024 02:04:38 +0000 ROA not before: Tue 30 Apr 2024 02:04:38 +0000 ROA not after: Tue 15 Apr 2025 01:30:02 +0000 asID: 9605 IP address blocks: 49.98.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.mft rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.crl rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/ukQSs19ainFHv8ZntZtSDarH2o8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ukQSs19ainFHv8ZntZtSDarH2o8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 01:09:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1916 (0x77c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6965B0B20DDE07A4C978E24073EA0E1117B37473 Validity Not Before: Apr 30 02:04:38 2024 GMT Not After : Apr 15 01:30:02 2025 GMT Subject: CN=9FF91F125CCCEAEAD91B0732E919870B619D86B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:8c:c2:07:53:96:94:82:c9:6d:d2:de:9b:4b: 33:5d:15:d0:15:ec:3e:54:94:e5:ad:38:32:eb:a0: c4:b2:83:9a:ed:8b:8e:d8:90:4a:7d:87:22:a5:bf: 0b:43:d6:45:dd:e8:a0:2d:13:da:76:e7:57:61:69: ca:57:fe:ec:ad:54:28:55:38:01:dc:4d:98:70:3b: 9b:a2:8a:4d:d6:52:7f:6b:22:e0:d3:bb:6f:d5:43: 83:3f:e2:3e:50:75:db:9d:91:27:c9:49:c5:fb:f3: 5c:21:b6:a6:81:87:67:7b:cb:42:c0:59:a2:7d:4b: 44:9e:42:7d:86:98:02:f8:01:8e:ad:c8:36:57:d9: 03:9c:95:3d:07:76:be:6d:7f:8f:ca:5a:e8:e4:db: 2d:5d:1f:ee:a6:09:8b:2e:9a:b0:d5:cb:2a:42:dd: d9:19:8c:09:95:b4:42:88:bb:84:45:1d:7a:b1:71: 69:6e:67:4b:67:7a:29:c4:0a:31:b2:47:5c:43:10: 79:db:a0:bb:22:f3:a4:b5:10:73:0a:04:fc:9a:6c: 0a:ac:a7:52:64:b8:0d:64:75:39:a9:ac:eb:8b:f5: 11:0f:71:3e:0c:ba:36:39:5d:6c:08:d5:b0:32:58: a2:7c:7c:cb:fe:2a:80:51:00:24:28:d2:d0:f3:5c: ca:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:F9:1F:12:5C:CC:EA:EA:D9:1B:07:32:E9:19:87:0B:61:9D:86:B9 X509v3 Authority Key Identifier: keyid:69:65:B0:B2:0D:DE:07:A4:C9:78:E2:40:73:EA:0E:11:17:B3:74:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/aWWwsg3eB6TJeOJAc-oOERezdHM.crl Authority Information Access: CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/aWWwsg3eB6TJeOJAc-oOERezdHM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/309/n_kfElzM6urZGwcy6RmHC2Gdhrk.roa RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.98.240.0/20 Signature Algorithm: sha256WithRSAEncryption a4:86:51:18:28:be:b1:eb:1d:58:78:5f:59:d7:32:ac:fe:0e: 2b:5b:b7:d8:b3:d7:12:e1:fa:36:3b:0c:2b:a4:61:55:fe:1f: 46:43:eb:c0:05:50:8c:f1:e7:bf:aa:66:19:06:09:9e:1b:13: 21:b8:42:94:52:86:c1:ba:a6:fd:1f:fb:38:58:e4:b6:66:cb: 7b:54:25:84:5b:b9:e6:a3:8d:cf:da:84:90:70:f8:62:54:f0: f0:a6:c3:fc:7a:99:4e:28:67:1d:d6:e1:24:2c:c4:22:96:f0: 56:5c:85:8c:86:c8:13:ee:7c:c6:f0:17:42:f0:38:76:2d:c0: 9a:22:5c:33:ed:24:dc:8c:70:d6:13:85:04:97:3f:38:a3:17: 10:53:ef:c6:ac:ce:87:41:34:3e:6c:42:c0:54:10:8d:68:93: 6b:44:d8:43:7a:b4:d5:9f:1b:0e:d7:2f:4a:b0:02:be:e8:9d: bb:c6:86:8b:6b:d9:c0:a4:c9:76:89:88:65:5e:93:12:9a:ee: 9a:d2:85:bd:60:c6:ed:e0:f4:33:b2:c1:b9:5a:99:28:0e:85: 08:5c:d5:8f:de:7d:82:cc:90:4b:7d:00:04:9a:28:77:23:ed: 6c:bd:e6:a4:d9:40:6d:2a:10:e6:0a:12:a1:79:0b:20:d5:85: ec:fa:cc:4a -----BEGIN CERTIFICATE----- MIIFCDCCA/CgAwIBAgICB3wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjk2 NUIwQjIwRERFMDdBNEM5NzhFMjQwNzNFQTBFMTExN0IzNzQ3MzAeFw0yNDA0MzAw MjA0MzhaFw0yNTA0MTUwMTMwMDJaMDMxMTAvBgNVBAMTKDlGRjkxRjEyNUNDQ0VB RUFEOTFCMDczMkU5MTk4NzBCNjE5RDg2QjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZjMIHU5aUgslt0t6bSzNdFdAV7D5UlOWtODLroMSyg5rti47Y kEp9hyKlvwtD1kXd6KAtE9p251dhacpX/uytVChVOAHcTZhwO5uiik3WUn9rIuDT u2/VQ4M/4j5QddudkSfJScX781whtqaBh2d7y0LAWaJ9S0SeQn2GmAL4AY6tyDZX 2QOclT0Hdr5tf4/KWujk2y1dH+6mCYsumrDVyypC3dkZjAmVtEKIu4RFHXqxcWlu Z0tneinECjGyR1xDEHnboLsi86S1EHMKBPyabAqsp1JkuA1kdTmprOuL9REPcT4M ujY5XWwI1bAyWKJ8fMv+KoBRACQo0tDzXMpfAgMBAAGjggIkMIICIDAdBgNVHQ4E FgQUn/kfElzM6urZGwcy6RmHC2GdhrkwHwYDVR0jBBgwFoAUaWWwsg3eB6TJeOJA c+oOERezdHMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBmBgNVHR8EXzBdMFug WaBXhlVyc3luYzovL3Jwa2ktcmVwb3NpdG9yeS5uaWMuYWQuanAvYXAvQTkxQTcz ODEwMDAwLzMwOS9hV1d3c2czZUI2VEplT0pBYy1vT0VSZXpkSE0uY3JsMG0GCCsG AQUFBwEBBGEwXzBdBggrBgEFBQcwAoZRcnN5bmM6Ly9ycGtpLXJlcG9zaXRvcnku bmljLmFkLmpwL2FwL0E5MUE3MzgxMDAwMC9hV1d3c2czZUI2VEplT0pBYy1vT0VS ZXpkSE0uY2VyMA4GA1UdDwEB/wQEAwIHgDCBuwYIKwYBBQUHAQsEga4wgaswYQYI KwYBBQUHMAuGVXJzeW5jOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9hcC9B OTFBNzM4MTAwMDAvMzA5L25fa2ZFbHpNNnVyWkd3Y3k2Um1IQzJHZGhyay5yb2Ew RgYIKwYBBQUHMA2GOmh0dHBzOi8vcnBraS1yZXBvc2l0b3J5Lm5pYy5hZC5qcC9y cmRwL2FwL25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQxYvAwDQYJKoZIhvcNAQELBQADggEBAKSGURgovrHrHVh4X1nXMqz+Ditb t9iz1xLh+jY7DCukYVX+H0ZD68AFUIzx57+qZhkGCZ4bEyG4QpRShsG6pv0f+zhY 5LZmy3tUJYRbueajjc/ahJBw+GJU8PCmw/x6mU4oZx3W4SQsxCKW8FZchYyGyBPu fMbwF0LwOHYtwJoiXDPtJNyMcNYThQSXPzijFxBT78aszodBND5sQsBUEI1ok2tE 2EN6tNWfGw7XL0qwAr7onbvGhotr2cCkyXaJiGVekxKa7prShb1gxu3g9DOywbla mSgOhQhc1Y/efYLMkEt9AASaKHcj7Wy95qTZQG0qEOYKEqF5CyDVhez6zEo= -----END CERTIFICATE-----Generated at Sat Jun 1 13:38:48 2024 by rpki-client on console-fra.rpki-client.org